Uploaded image for project: 'Dev - Nexus Repo'
  1. Dev - Nexus Repo
  2. NEXUS-35061

SSL Trusted Certificates key_store_data table not included into support zip when using PostgreSQL and H2

    Details

    • Notability:
      3

      Description

      When a support zip is generated while using OrientDB, the SSL Certificates stored in the trusted.ks /keystore.ks files is included. This is very helpful to support team to debug issues trusting remote servers.

      When a support zip is generated using PostgrSQL or H2, the contents of key_store_data table is NOT included.

      The trusted.ks contains public certificates of remote servers to trust. Providing these in a support zip is not a security concern.

      The private.ks ( despite its name) contains the node id of the NXRM instance. This also is not something that needs to be protected from Sonatype Support.

      Expected

      Include key_store_data contents in support zip.

        Attachments

          Activity

            People

            Assignee:
            Unassigned Unassigned
            Reporter:
            plynch Peter Lynch
            Last Updated By:
            Michael Oliverio Michael Oliverio
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Dates

              Created:
              Updated:

                tigCommentSecurity.panel-title